Information Systems Manager

Start Date: 1987-01-01

OVERVIEW: Held multiple roles and responsibilities. At the National Reconnaissance Officer (NRO), served as the TEMPEST authority in managing all NRO Technical TEMPEST Security programs (covering govt. and contractor facilities) from 1998 to 2004. As Technical Security Officer and Certified Technical TEMPEST Authority, managed interface between govt. organizations and contractors to develop Certified Automated Processing Systems in compliance with DCID 6/3 and NISPOM standards. Reviewed all IT system security plans and worked directly with contractors to ensure successful completion of Intelligence Community accreditation processes. Provided support for Government Industrial Security Program activities. KEY CONTRIBUTIONS & ACHIEVEMENTS: ★ Served as a Technical Security Subject Matter Expert on several ODNI Intelligence Community technical working groups; acted as the CIA member of the TEMPEST Advisory Group. ★ Led team in developing communication equipment room (CER) standards; policy defined requirements that included physical, environmental, and electrical requirements for construction of CER within a sensitive, compartmented information facility. ★ Directly involved in efforts to revise the NSTISSAM (National Security Telecommunications and Information System Security Policy) as a member of the subcommittee. ★ Worked with representatives from multiple agencies to write DCID 6/9 (Director of Central Intelligence Directive) during numerous reviews to address key changes. Collaborated with individuals from the NSA, CIA, DIA, NRO, and DEO.

Industrial Program Security Officer

Start Date: 1987-01-01

OVERVIEW: Managed all aspects of physical, technical, and personnel security for specific Intelligence Community missions. Directed, trained, and evaluated staff of 7. Conducted investigations of security incidents and prepared incident reports for upper management review in first formal supervisor role. KEY CONTRIBUTIONS & ACHIEVEMENTS: ★ Served as Co-Chairman for rewrite of UL 2050 Certification Standard, a unique and cooperative effort between the U.S. govt. and Underwriters Laboratories to revise 2050 guidelines used as standards for installation of intrusion detection systems.